Intrusion Detection Systems mailing list archives

RE: RE: IDS taps in a switched network (The right tools for the job)

From: mjr () nfr net (Marcus J. Ranum)
Date: Mon, 01 Nov 1999 13:34:34 -0500

- I saw one of ODS's products at last week's Shadowcon which had
10 100baseT
  links and a 1000baseT monitor/span/spy port.


Yes, I should have mentioned ODS earlier. It is one of the few vendors that
has been researching embedding IDS code in hardware on its switches. I
haven't actually used one of these, though.


That sounds interesting. What they used to have was really just
a PC card with an intel etherexpress on it, plugged into the
management port inside the box. It was such a generic system
that you could even boot OpenBSD on the CDROM and chat with
the NIC normally. :)

Hopefully their new version's cooler - anyone got any
reliable info on its internals?

mjr.

--
Marcus J. Ranum, CEO, Network Flight Recorder, Inc.
work - http://www.nfr.net
home - http://www.clark.net/pub/mjr

Current thread:

RE: RE: IDS taps in a switched network (The right tools for the job) David Newman (Nov 01)
- RE: RE: IDS taps in a switched network (The right tools for the job) Marcus J. Ranum (Nov 01)
- RE: RE: IDS taps in a switched network (The right tools for the job) Jackie Chan (Nov 01)
  - IDS standards (was: IDS taps in a switched network...) David Newman (Nov 01)
    - Re: IDS standards (was: IDS taps in a switched network...) Jackie Chan (Nov 01)
    - Re: Re: IDS standards (was: IDS taps in a switched network...) Marcus J. Ranum (Nov 02)
    - Re: IDS standards (was: IDS taps in a switched network...) Ron Gula (Nov 01)
    - Re: IDS standards (was: IDS taps in a switched network...) Stuart Staniford-Chen (Nov 02)
    - Re: IDS standards (was: IDS taps in a switched network...) Alexander Bochmann (Nov 09)
    - RealSecure Database Issue ColFlagg () chubb com (Nov 10)
    - Re: RealSecure Database Issue Jackie Chan (Nov 11)
    - Re: RealSecure Database Issue mht () clark net (Nov 12)

(Thread continues...)